Dismiss Notice
It can take 24-48 hours for the hosting/Teamspeak applications to be reviewed. Opening a thread before 48 hours, asking about the application timeline will result in your account and application being deleted permanently.

ANNOUNCEMENT Shell Shock Bash Vulnerability

Discussion in 'News and Announcements' started by Bryan, Sep 25, 2014.

  1. Bryan

    Bryan Administrator

    Messages:
    5,300
    Likes Received:
    685
    CVE-2014-6271

    A serious bug in most versions of the Bash shell for unix, was released yesterday, September 24, 2014. The vulnerability allows remote attackers to execute arbitrary code because it processes trailing strings after function definitions in the values of environment variables.

    As always the InstaFree servers are not vulnerable, and have had the suitable upgrades in place (for quite some time) to avoid the issues with this vulnerability. :D

    However, if you have another server somewhere, VPS, etc., you can use the following website to check the vulnerability of your system: shellshockvuln.com
     
    Sarthak Adhikari and Sloth like this.
  2. Hussam Al-Tayeb

    Hussam Al-Tayeb Hosting Client

    Messages:
    460
    Likes Received:
    232
    Sloth and Bryan like this.
  3. Sloth

    Sloth Hosting Client

    Messages:
    27
    Likes Received:
    6
    Bryan likes this.
  4. Bryan

    Bryan Administrator

    Messages:
    5,300
    Likes Received:
    685
    That's the 2nd patch. The first patch fixed the original issue, but another issue was found. The second issue wasn't quite as bad, as the attacker would basically need SSH access to the system to use the exploit. If they already have SSH access, chances are they don't need the exploit. ha ha!
     

Share This Page